Pathetic Blanket SSL Enforcement

[ridexbuilder]

Headed up by the script kiddies at Google, it looks as though https is going to need to be mandatory for all sites on all pages, regardless of whether it needs it or not. Where the heck are these people supposedly educated? A crappy Youtube video of cleaning your teeth or shaking your booty needs an encrypted connection? A product info page or background information on your company needs to be encrypted? I think (know) not! Anyway... [/rant]

• I've done the obvious in config.php for both admin and catalog. That's not enough to clear mixed content messages.
• Clean up product descriptions to change any external links to https (even though they might not be -crazy!)
• Replaced calls to jquery on google to use https - Slimbox now working.

Can't figure out Cloudzoom yet 'cos of the javascript garb. Chrome throws up this gobbledegook:

Code:

google.loader.f @ jsapi:22
O.load @ jsapi:36
google.load @ jsapi:18
(anonymous) @ my-product-p-1227.html:987
jsapi:22 A Parser-blocking, cross site (i.e. different eTLD+1) script,  https://ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js, is  invoked via document.write. The network request for this script MAY be  blocked by the browser in this or a future page load due to poor network  connectivity. If blocked in this page load, it will be confirmed in a  subsequent console message.See  https://www.chromestatus.com/feature/5718547946799104 for more details.

Firebug ain't working in my current release of Firefox but doubt it would help me out in this instance.

[ridexbuilder]

Replaced 6 instances of src="http: in catalog/includes/javascript
That at least has the catalog pages showing as "secure" again. Well, whoopdeedo.